CVE-2019-0058

A vulnerability in the Veriexec subsystem of Juniper Networks Junos OS allowing an attacker to fully compromise the host system. A local authenticated user can elevate privileges to gain full control of the system even if they are specifically denied access to perform certain actions. This issue affects: Juniper Networks Junos OS: 12.3X48 versions prior to 12.3X48-D80 on SRX Series.

Published: Oct 9, 2019
Updated: Apr 13, 2023
CVE: CVE-2019-0058
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
juniper / junos	12.3x48-d10	12.3x48-d10.x
juniper / junos	12.3x48-d15	12.3x48-d15.x
juniper / junos	12.3x48-d35	12.3x48-d35.x
juniper / junos	12.3x48-d50	12.3x48-d50.x
juniper / junos	12.3x48-d30	12.3x48-d30.x
juniper / junos	12.3x48-d25	12.3x48-d25.x
juniper / junos	12.3x48-d45	12.3x48-d45.x
juniper / junos	12.3x48-d55	12.3x48-d55.x
juniper / junos	12.3x48-d20	12.3x48-d20.x
juniper / junos	12.3x48-d40	12.3x48-d40.x
juniper / junos	12.3x48-d60	12.3x48-d60.x
juniper / junos	12.3x48-d65	12.3x48-d65.x
juniper / junos	12.3x48-d70	12.3x48-d70.x
juniper / junos	12.3x48-d75	12.3x48-d75.x
juniper / junos	12.3x48	12.3x48.x

https://kb.juniper.net/JSA10956

Vulnerability Database

291,049

CVE-2019-0058